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1 Featherweight F irefox: formalizing the core of a web browser 

M^. sri f sot ': , Bet i a mi n C. Pi er ce 

June 2010 WebApps'10: Proceedings of the 2010 USENIX conference on Web application development 
Publisher: USENIX Association 

Bibliometrics: Downloads (6 Weeks): n/a, Downloads (12 Months): n/a, Downloads (Overall): n/a, Citation Count: 0 

We offer a formal specification of the core functionality of a web browser in the form of a small-step operational semantics. The specification accurately models 
the asynchronous nature of web browsers and covers the basic aspects of windows, DOM trees, ... 

2 Communications of the ACM: Volume 52 Issue 12 

^ December 2009 Communications of the ACM 

Publisher: ACM 

Full text available:^ pgitai Edition , ffl(7.37 

i) 

Bibliometrics: Downloads (6 Weeks): 30, Downloads (12 Months): 30, Downloads (Overall): 30, Citation Count: 0 

3 End-user privacy in human-computer interaction 

Giovanni lacheilo , Jason Hong 

January 2007 Foundations and Trends in Human-Computer Interaction , Volume 1 Issue 1 
Publisher: Now Publishers Inc. 

Bibliometrics: Downloads (6 Weeks): n/a, Downloads (12 Months): n/a, Downloads (Overall): n/a, Citation Count: 12 

The purpose of this article is twofold. First, we summarize research on the topic of privacy in Human-Computer Interaction (HCI), outlining current approaches, 
results, and trends. Practitioners and researchers can draw upon this review when working ... 

4 Communication s of the ACM: Volume 51 issue 5 
^June2008 Communications of the ACM 

Publisher: ACM 

Full text available: glial Edition , fPd[(8.89 
MB) 

Bibliometrics: Downloads (6 Weeks): 62, Downloads (12 Months): 62, Downloads (Overall): 3084, Citation Count: 0 
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Compiling cry ptographic protoco ls for deployment on the web 
> jay.A. uicCaihv. S^.j-^rg Krra::;ii;?J;. .Jcshiia_D. CiL-^iari, John, D./jarsde:.!. 
May 2007 WWW '07: Proceedings of the 16th international conference on World Wide Web 
Publisher: ACM 

Full text available: §Pdf (175.83 
KB) 

Bibliometrics: Downloads (6 Weeks): 2, Downloads (12 Months): 27, Downloads (Overall): 222, Citation Count: 1 



Cryptographic protocols are useful for trust engineering in Web transactions. The Cryptographic Protocol Programming Language (CPPL) provides a model 
wherein trust management annotations are attached to protocol actions, and are used to constrain the ... 



Keywords: CPPL, HTTP, cryptographic protocols, sessions 

6 Captcha-free throttling 
^ Markus Jakobsson 

November 2009 Al Sec '09 : Proceedings of the 2nd ACM workshop on Security and artificial intelligence 
Publisher: ACM A Recast p^issiens 

Full text available: iPdf (404.31 



Bibliometrics: Downloads (6 Weeks): 20, Downloads (12 Months): 188, Downloads (Overall): 202, Citation Count: 0 

We argue that the CAPTCHA in its current incarnation may be near the end of its useful life, and propose an alternative throttling mechanism to control access 
to web resources. We analyze our proposed solution against a collection of realistic adversaries ... 

Keywords: access, captcha, cloning, cookie theft, dns poisoning, malware, scripting, throttle, usability 

7 VVhaLDNSfenol 

^ Paul Vixie 

December 2009 Communications of the ACM , Volume 52 Issue 12 

Publisher: ACM Regusst Permissions 

Full text available: gDiqita! Edition, IM (26.55 KB), |M(4.28 

i) 

Bibliometrics: Downloads (6 Weeks): 100, Downloads (12 Months): 2287, Downloads (Overall): 2777, Citation Count: 0 
DNS is many things to many people— perhaps too many things to too many people. 

8 Wh^DNSisNot 

November 2009 Queue , Volume 7 Issue 10 

Publisher: ACM ^ Vie^st ^missions 

Full text available: HM (19.25 KB), |M (149.87 
KB) 

Bibliometrics: Downloads (6 Weeks): 1413, Downloads (12 Months): 25012, Downloads (Overall): 53806, Citation Count: 0 

DNS is many things to many people - perhaps too many things to too many people. 
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9 HTTP Cook^: St^ 
^ David M. Kristol 

November 2001 Transactions on Internet Technology (TOIT) , Volume 1 Issue 2 

Publisher: ACM ^ 

Full text available: §Pdf (390.38 
KB) 

Bibliometrics: Downloads (6 Weeks): 5, Downloads (12 Months): 302, Downloads (Overall): 3406, Citation Count: 11 

How did we get from a world where cookies were something you ate and where "nontechies" were unaware of "Netscape cookies" to a world where cookies are 
a hot-button privacy issue for many computer users? This article describes how HTTP "cookies" work ... 

Keywords: Cookies, HTTP, World Wide Web, privacy, state management 

10 Trouble Manage ment for Multimedia Services in M ulti-Provider Environments 

\ ^--'l : . 1 '■ \ >, 7<fcT i,: si, H.:,,, I .^c%: U. \.i cf]b i 

March 2000 Journal of Network and Systems Management , Volume 8 Issue 1 

Publisher: Plenum Press 

Full text available: pyblishsL 
Site 

Bibliometrics: Downloads (6 Weeks): n/a, Downloads (12 Months): n/a, Downloads (Overall): n/a, Citation Count: 1 

As telecommunications and computers evolve, multimedia services are being increasingly deployed over a variety of organizational and technology domains. 
Customer requirements and the competitive market mean that the delivery of multimedia services at ... 

Keywords: TINA, TMN, Trouble- Management, multimedia service management, quality-of-service 

11 Security and identification Indicators tor browsers against spoofing and phishinq attacks 
^ Amir Herzbertj , Ahmad Jbaia 

September 2008 Transactions on Internet Technology (TOIT) , Volume 8 Issue 4 

Publisher: ACM ^Re-juestPenr-issicns 

Full text available: flPdf (3.67 
MB) 

Bibliometrics: Downloads (6 Weeks): 42, Downloads (12 Months): 591, Downloads (Overall): 1752, Citation Count: 1 

In spite of the use of standard Web security measures (SSL/TLS), users enter sensitive information such as passwords into fake Web sites. Such fake sites 
cause substantial damages to individuals and corporations. In this work, we identify several vulnerabilities ... 

Keywords: Human-computer interaction, Web spoofing, phishing, secure usability 



http://portal.acm.org/results.cfiii?li= l&cfid=7 104 149&cftoken=89504 132 (3 of 6)1/22/11 2:06:31 PM 



Results (page 1): secure and network and record and cookie and browser 

12 Cfecjime^ 

^ Robert C. Newman 

September 2006 I nfoSecCD '06: Proceedings of the 3rd annual conference on Information security curriculum development 
Publisher: ACM 

Full text available: flPdf (123.56 
KB) 

Bibliometrics: Downloads (6 Weeks): 30, Downloads (12 Months): 547, Downloads (Overall): 3887, Citation Count: 1 

Computer networks and computer systems are experiencing attacks and threats from many areas. Threats are also extended to include the individual user's 
computer assets and resources. Information will be presented on the categories of security and privacy ... 

Keywords: cybercrime, identity theft, internet fraud 

13 Trickles: a stateless network stack for improved scalability, resilience, and flexibility 

Alan Shieh . Andrew C Myers , Emir; Gun Slier 

May NSDI'05: Proceedings of the 2nd conference on Symposium on Networked Systems Design & I mplementation ■ Volume 2 , Volume 2 
2005 

Publisher: USENIX Association 
Full text available: fPdf (280.09 
KB) 

Bibliometrics: Downloads (6 Weeks): 3, Downloads (12 Months): 39, Downloads (Overall): 76, Citation Count: 7 

Traditional operating system interfaces and network protocol implementations force system state to be kept on both sides of a connection. Such state ties the 
connection to an endpoint, impedes transparent failover, permits denial-of-service attacks, ... 

14 Ajj^ambra; a systen^ for c 

Shgo fang., Chris.Grier, Onw Adicjriez, Samu el T. Kin g 

April 2010 WWW '10: Proceedings of the 19th international conference on World wide web 
Publisher: ACM 

Full text available: fPdf; (515.99 
KB) 

Bibliometrics: Downloads (6 Weeks): 22, Downloads (12 Months): 166, Downloads (Overall): 166, Citation Count: 0 

Alhambra is a browser-based system designed to enforce and test web browser security policies. At the core of Alhambra is a policy-enhanced browser 
supporting fine-grain security policies that restrict web page contents and execution. Alhambra requires ... 

Keywords: cross-site scripting, web browser, web security 
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Cookies: A deployment study and the testing implications 
t AQdiew F : Jajjeendefi, Jamee. Miller 
June 2009 Transactions on the Web (TWEB) , Volume 3 Issue 3 

Publisher: ACM ^ 

Full text available: fPdf (2.25 
MB) 

Bibliometrics: Downloads (6 Weeks): 38, Downloads (12 Months): 350, Downloads (Overall): 594, Citation Count: 1 



The results of an extensive investigation of cookie deployment amongst 100,000 Internet sites are presented. Cookie deployment is found to be approaching 
universal levels and hence there exists an associated need for relevant Web and software engineering ... 



Keywords: Cookies, Internet browser, Web engineering, Web technologies, software testing 

16 Privacy- preserving browser-side scri pting with BFiow 
^ Alexander 'Zip , Neha Manila , Maxwell Krohn , Robert Morris 

April 2009 EuroSys '09 : Proceedings of the 4th ACM European conference on Computer systems 

Publisher: ACM j ^hartffriiteto 

Full text available: fPdf (497.92 
KB) 

Bibliometrics: Downloads (6 Weeks): 7, Downloads (12 Months): 115, Downloads (Overall): 291, Citation Count: 1 



Some web sites provide interactive extensions using browser scripts, often without inspecting the scripts to verify that they are benign and bug-free. Others 
handle users' confidential data and display it via the browser. Such new features contribute ... 



Keywords: information flow control, javascript, labels, web platforms 

17 Dynamic pharming attacks and locked same-origin policies for web browsers 
^ Chris Karlol , Uroesh Shankar , J, 0. Tyqar , David Wagner 

October 2007 CCS '07: Proceedings of the 14th ACM conference on Computer and communications security 

Publisher: ACM ^ yiegusa ?$r.-&wn 

Full text available: fPdf (504.43 
KB) 

Bibliometrics: Downloads (6 Weeks): 32, Downloads (12 Months): 253, Downloads (Overall): 1336, Citation Count: 15 

We describe a new attack against web authentication, which we call dynamic pharming. Dynamic pharming works by hijacking DNS and sending the victim's 
browser malicious Javascript, which then exploits DNS rebinding vulnerabilities and the name-based ... 

Keywords: pharming, same-origin policy, web authentication 
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18 e-coiipons: An Efjiclerit Sgciife and M#ki^Q:E^M%stejii 

M:!^.Pa!ii, Ej^Shy^asyiidai; 

December 2005 I nformation Systems Frontiers , Volume 7 Issue 4-5 

Publisher: Kluwer Academic Publishers 

Bibliometrics: Downloads (6 Weeks): n/a, Downloads (12 Months): n/a, Downloads (Overall): n/a, Citation Count: 1 

In this paper, we propose a new efficient and secure micro-payment scheme, named e-coupons, which can provide the users the facility of delegating their 
spending capability to other users or their own devices like Laptop, ... 

Keywords: PayWord, SPKI/SDSI, TESLA, delegation, micro-payment, one-way hash function, security 

^ Roger Barqa , David Lome;, German Sheqaiov, Gerhard Weikum 

August 2004 Transactions on Internet Technology (TOIT) , Volume 4 Issue 3 

Publisher: ACM ^ixP^m 

Full text available: §Pd[ (997.52 
KB) 

Bibliometrics: Downloads (6 Weeks): 6, Downloads (12 Months): 85, Downloads (Overall): 2019, Citation Count: 6 

Internet-based e-services require application developers to deal explicitly with failures of the underlying software components, for example web servers, 
servlets, browser sessions, and so forth. This complicates application programming, and may expose ... 

Keywords: Exactly-once execution, application recovery, communication protocols, interaction contracts 
20 Communications of the ACM: Volume 52 issue 5 
^June2009 Communications of the ACM 

Publisher: ACM 

Full text available: -SiMiLEaitiM , ^df (6.34 
MB) 

Bibliometrics: Downloads (6 Weeks): 27, Downloads (12 Months): 27, Downloads (Overall): 1323, Citation Count: 0 
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